Privacy policy
The protection of personal data is of special concern to Rhythm & Denim.
This privacy policy informs you about the personal data we process in connection with our activities and operations, including our website. We specifically inform about the purposes, methods, and locations of our data processing. We also inform about the rights of individuals whose data we process.
Additional privacy statements and other legal documents such as Terms and Conditions (T&C), Terms of Use, or Conditions of Participation may apply to specific or additional activities and operations.
We comply with Swiss data protection law.
1. Contact
Responsible for the processing of personal data:
Rhythm & Denim
Überlandstrasse 22
8953 Dietikon
Email: info@rhythmdenim.com
We indicate if there are other responsible parties for the processing of personal data in individual cases.
2. Terms and Legal Bases
2.1 Terms
Personal data are all information relating to an identified or identifiable natural person. An affected person is someone whose personal data we process.
Processing includes any handling of personal data, regardless of the means and procedures used, such as querying, matching, adjusting, archiving, storing, retrieving, disclosing, procuring, collecting, deleting, revealing, ordering, organizing, storing, modifying, distributing, linking, destroying, and using personal data.
The European Economic Area (EEA) includes the Member States of the European Union (EU) as well as Liechtenstein, Iceland, and Norway. The General Data Protection Regulation (GDPR) refers to the processing of personal data as the processing of personal data.
2.2 Legal Bases
We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (Data Protection Act, FADP) and the Ordinance on Data Protection (Data Protection Ordinance, FPO).
3. Type, Scope, and Purpose
We process personal data necessary to carry out our activities and operations permanently, user-friendly, securely, and reliably. Such personal data can fall into categories such as inventory and contact data, browser and device data, content data, metadata or marginal data, and usage data, location data, sales data, as well as contract and payment data.
We process personal data for the duration necessary for the respective purpose or purposes or as required by law. Personal data whose processing is no longer necessary are anonymized or deleted.
We may have personal data processed by third parties. We may process personal data together with third parties or transmit them to third parties. These third parties are particularly specialized providers whose services we use. We also ensure data protection with such third parties.
We process personal data only with the consent of the affected person, unless processing is permitted for other legal reasons. Processing without consent may be permissible, for example, to fulfill a contract with the affected person and for corresponding pre-contractual measures, to protect our overriding legitimate interests, because processing is evident from the circumstances, or after prior information.
In this context, we process in particular information that an affected person voluntarily transmits to us when contacting us – for example, by mail, email, instant messaging, contact form, social media, or telephone – or when registering for a user account. We can store such information, for example, in an address book, in a customer relationship management system (CRM system), or with similar tools. If we receive data about other people, the transmitting persons are obliged to ensure data protection towards these people and to ensure the accuracy of this personal data.
We also process personal data that we receive from third parties, obtain from publicly accessible sources, or collect in the course of our activities and operations, provided and to the extent that such processing is legally permissible.
4. Applications
We process personal data about applicants as far as they are necessary for assessing suitability for employment or for the subsequent implementation of an employment contract. The required personal data results in particular from the requested information, for example, in the context of a job advertisement. We also process the personal data that applicants voluntarily provide or publish, particularly as part of cover letters, resumes, and other application documents, as well as online profiles.
5. Personal Data Abroad
We generally process personal data in Switzerland and the European Economic Area (EEA). However, we can also export or transmit personal data to other countries, in particular, to process or have them processed there.
We can export personal data to all states and territories on earth, provided that the respective law guarantees adequate data protection according to the decision of the Swiss Federal Council.
We can transmit personal data to countries whose law does not guarantee adequate data protection if data protection is guaranteed for other reasons, in particular based on standard data protection clauses or with other suitable guarantees. Exceptionally, we can export personal data to countries without adequate or suitable data protection if the special data protection law requirements are met, for example, the express consent of the affected persons or a direct connection with the conclusion or processing of a contract. We will gladly provide affected persons with information about any guarantees upon request or provide a copy of any guarantees.
6. Rights of Affected Persons
6.1 Data Protection Legal Claims
We grant affected persons all claims according to applicable data protection law. Affected persons have in particular the following rights:
Information: Affected persons can request information as to whether we process personal data about them, and if so, what personal data. Affected persons also receive the information necessary to assert their data protection legal claims and to ensure transparency. This includes the processed personal data as such, but also, among other things, information about the processing purpose, the duration of storage, any disclosure or export of data to other countries, and the origin of the personal data.
Correction and Restriction: Affected persons can correct inaccurate personal data, complete incomplete data, and restrict the processing of their data.
Deletion and Objection: Affected persons can have personal data deleted ("right to be forgotten") and object to the processing of their data with effect for the future.
Data Issuance and Data Transfer: Affected persons can request the issuance of personal data or the transfer of their data to another controller.
We can postpone, restrict, or refuse the exercise of the rights of affected persons within the legally permissible framework. We can point out to affected persons any conditions that must be met to exercise their data protection legal claims. For example, we can partially or completely refuse to provide information with reference to business secrets or the protection of other persons. For example, we can also partially or completely refuse the deletion of personal data with reference to statutory retention obligations.
We can exceptionally provide for costs for exercising rights. We inform affected persons in advance about any costs.
We are obliged to identify affected persons who request information or assert other rights with appropriate measures. Affected persons are obliged to cooperate.
6.2 Right to Complain
Affected persons have the right to enforce their data protection legal claims in court or to complain to a competent data protection supervisory authority.
The data protection supervisory authority for private controllers and federal bodies in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).
7. Data Security
We take appropriate technical and organizational measures to ensure data security commensurate with the respective risk. However, we cannot guarantee absolute data security.
Access to our website is via transport encryption (SSL / TLS, particularly with the Hypertext Transfer Protocol Secure, abbreviated HTTPS). Most browsers indicate transport encryption with a padlock in the address bar.
Our digital communication is subject to mass surveillance without cause and suspicion and other surveillance by security authorities in Switzerland, the rest of Europe, the United States of America (USA), and other countries. We have no direct influence on the corresponding processing of personal data by secret services, police stations, and other security authorities.
8.1 Cookies
We can use cookies. Cookies - both our own cookies (first-party cookies) and cookies from third parties whose services we use (third-party cookies) - are data that is stored in the browser. Such stored data is not necessarily limited to traditional text-based cookies.
Cookies can be stored in the browser temporarily as "session cookies" or for a specific period as so-called permanent cookies. "Session cookies" are automatically deleted when the browser is closed. Permanent cookies have a specific storage duration. Cookies, in particular, allow recognizing a browser on the next visit to our website, thereby, for example, measuring the reach of our website. However, permanent cookies can also be used for online marketing purposes.
Cookies can be disabled or deleted entirely in the browser settings at any time. Without cookies, our website may not be fully available. We request - at least if and to the extent required - explicit consent for the use of cookies.
8.2 Server Log Files
We can collect the following information for each access to our website, provided that this information is transmitted by your browser to our server infrastructure or can be determined by our web server: date and time, including time zone, Internet Protocol (IP) address, access status (HTTP status code), operating system including user interface and version, browser including language and version, the specific sub-page of our website called, including the amount of data transferred, the last website visited in the same browser window (referrer).
We store such information, which can also represent personal data, in server log files. This information is necessary to provide our website permanently, user-friendly, and reliably and to ensure data security, especially the protection of personal data, by ourselves or with the help of third parties.
8.3 Tracking Pixels
We can use tracking pixels on our website. Tracking pixels are also known as web beacons. Tracking pixels, including those from third parties whose services we use, are small, usually invisible images that are automatically retrieved when visiting our website. Tracking pixels can capture the same information as server log files.
9. Notifications and Messages
We send notifications and messages via email and other communication channels such as instant messaging or SMS.
9.1 Success and Reach Measurement
Notifications and messages may contain web links or tracking pixels that capture whether an individual message has been opened and which web links were clicked. Such web links and tracking pixels may also capture the use of notifications and messages on a personal basis. We require this statistical tracking of usage for success and reach measurement in order to effectively and user-friendly send notifications and messages based on the needs and reading habits of recipients, as well as to ensure their long-term, secure, and reliable delivery.
9.2 Consent and Objection
You must generally provide explicit consent for the use of your email address and other contact addresses unless such use is permissible for other legal reasons. Where possible, we use the "double opt-in" procedure for consent, meaning you will receive an email with a web link that you must click to confirm, preventing misuse by unauthorized third parties. We may log such consents, including the Internet Protocol (IP) address, date, and time, for evidentiary and security purposes.
You can generally object to receiving notifications and messages, such as newsletters, at any time. By objecting, you can also object to the statistical tracking of usage for success and reach measurement. Necessary notifications and messages related to our activities and operations remain exempt.
9.3 Notification and Message Service Providers
We send notifications and messages with the assistance of specialized service providers.
10. Social Media
We are on Social Media platforms and other online platforms to communicate with interested individuals and to provide information about our activities and operations. In connection with such platforms, personal data may also be processed outside of Switzerland and the European Economic Area (EEA).
The terms and conditions (T&Cs) and terms of use, as well as privacy policies and other provisions of the respective operators of such platforms, also apply. These provisions inform in particular about the rights of affected individuals directly vis-à-vis the respective platform, including, for example, the right to information.
11. Third-Party Services
We use services provided by specialized third parties to conduct our activities and operations in a permanent, user-friendly, secure, and reliable manner. With such services, we can embed functions and content into our website. When embedding such services, the used services capture at least temporarily the Internet Protocol (IP) addresses of users for technical reasons.
For necessary security-related, statistical, and technical purposes, third parties whose services we use may process data related to our activities and operations in an aggregated, anonymized, or pseudonymized form. This includes, for example, performance or usage data to offer the respective service.
We use, in particular:
Services from Google: Providers: Google LLC (USA) / Google Ireland Limited (Ireland) for users in the European Economic Area (EEA) and Switzerland; General information on data protection: "Privacy Policy".
11.1 Digital Infrastructure
We use services from specialized third parties to access the necessary digital infrastructure in connection with our activities and operations. This includes, for example, hosting and storage services from selected providers.
We use, in particular:
WILDSPACE: Hosting; Provider: SKALM GmbH (Switzerland); Data protection information: "Privacy Policy"
11.2 Contact Options
We use services from selected providers to better communicate with third parties, such as potential and existing customers.
11.3 Audio and Video Conferences
We use specialized services for audio and video conferences to communicate online. This allows us, for example, to hold virtual meetings or conduct online classes and webinars. Additional terms and conditions of each service, such as privacy policies and terms of use, also apply to participation in audio and video conferences.
Depending on your life situation, we recommend muting the microphone by default and blurring the background or using a virtual background during audio or video conferences.
We use, in particular:
Teams: Video Conferences; Provider: Microsoft. (USA); Data protection information: "Privacy Policy"
Teamviewer: Video Conferences; Provider: TeamViewer (Germany); Data protection information: "Privacy Policy"
Zoom: Video Conferences; Provider: Zoom Video Communications Inc. (USA); Data protection information: "Privacy Policy"
12. Final Provisions
We may adjust and supplement this privacy policy at any time. We will inform you about such adjustments and supplements in an appropriate manner, especially by publishing the current privacy policy on our website.